Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30572E46671B11EE91D074744AD9E6FC.roa
File: 30572E46671B11EE91D074744AD9E6FC.roa (raw, json)
Hash identifier: 9/IVRbftP07zcKTMdIy6YgTosbSJSAjBSruq/xeMCJE=
Subject key identifier: 96:63:1F:B8:E6:4A:22:D0:02:2A:D4:68:83:AB:81:B6:94:FF:95:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 455D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30572E46671B11EE91D074744AD9E6FC.roa
Signing time: Tue 10 Oct 2023 03:14:57 +0000
ROA not before: Tue 10 Oct 2023 03:14:53 +0000
ROA not after: Wed 28 Aug 2024 03:14:53 +0000
asID: 140227
IP address blocks: 154.197.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17757 (0x455d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 03:14:53 2023 GMT
Not After : Aug 28 03:14:53 2024 GMT
Subject: CN=6524c1b1-11eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:82:8a:57:f1:b0:78:da:2c:00:a6:a2:f3:c4:
17:f2:53:fe:e3:30:7c:ba:2e:93:9d:73:48:8d:f7:
ec:8e:6f:bd:d2:29:de:17:e6:51:d7:1e:d4:42:22:
7e:52:98:87:f9:77:ca:bb:1f:ec:21:87:99:99:b5:
cd:f7:a1:e7:81:b0:2e:6f:f8:4f:df:5a:9d:21:93:
5e:01:1c:e7:7a:fa:73:a6:8a:a9:af:b4:e9:ef:87:
82:40:bf:ee:f1:74:ce:31:ad:a8:a0:1e:99:d5:74:
fa:2a:d3:21:ac:af:f2:08:0b:ef:7d:69:d9:9b:ef:
07:90:99:27:eb:8c:d3:6e:bb:fc:fc:9e:f0:9b:96:
24:0e:df:51:e1:4a:40:23:2c:a1:25:82:d4:5f:54:
e9:cb:f2:49:c0:9a:25:4f:a6:30:8b:64:c8:07:c8:
f7:35:0e:29:1c:c2:ed:d0:14:e5:6e:4e:6f:2e:4d:
25:73:c8:9f:f9:d9:fc:01:46:be:a4:c8:2f:0a:cf:
df:03:e3:d3:ca:fe:b9:94:35:72:c9:a1:9d:6a:93:
0d:99:be:e8:1c:32:ca:d3:28:a2:1e:dc:88:2f:27:
b8:6b:37:25:75:fc:7c:29:36:d1:eb:ad:c0:10:66:
96:b3:33:71:a8:85:bc:a4:87:9d:ce:c1:e9:bd:e5:
a3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:63:1F:B8:E6:4A:22:D0:02:2A:D4:68:83:AB:81:B6:94:FF:95:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30572E46671B11EE91D074744AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.14.0/24
Signature Algorithm: sha256WithRSAEncryption
20:5d:bf:9d:b6:8c:4d:9d:f4:d6:9b:57:f9:38:6d:65:2b:c9:
fc:3a:1f:bd:02:90:99:c4:84:b9:1d:01:a7:24:09:0e:27:81:
43:8a:d8:4f:49:c1:3a:9f:05:45:1f:11:b7:4c:b5:9d:a2:e4:
53:42:9d:8c:06:37:eb:50:fe:aa:6b:c6:45:aa:70:65:0f:6b:
d8:38:90:5c:95:77:6e:3b:83:34:91:c0:1d:41:c6:91:6d:a1:
53:16:1b:66:fa:b1:99:b4:3b:b6:af:7c:b8:43:8c:80:f5:d8:
79:5e:28:01:8d:06:4a:ee:78:6c:a4:64:e5:a3:b6:7e:95:9e:
f1:2c:7d:a2:a7:18:57:df:50:21:d1:08:0d:94:50:46:c7:69:
e7:00:99:56:d8:d2:a1:bd:36:31:3d:42:88:24:67:da:ef:0c:
0e:82:8d:57:9e:29:b1:6b:7b:6e:5f:3a:b4:dc:48:06:31:3d:
14:48:5c:26:08:11:d3:b2:6f:57:f0:7d:d0:c0:fa:e5:7a:28:
52:04:4f:14:82:9a:b1:3a:8d:8d:6b:4e:d1:44:49:1a:48:d3:
db:5d:95:a2:c8:7c:0b:d3:4b:ad:6d:ab:c5:70:7f:70:d2:22:
db:43:ba:8b:43:b2:9d:2a:0d:61:ad:db:22:7f:18:42:a4:62:
0d:15:3b:b2
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICRV0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
OEYyRDBBRjExMC8GA1UEBRMoMjVENjNFMDhFQUJFN0NGQTY3ODVENEMxRDZEMzQx
MTZERTE1QjNEQzAeFw0yMzEwMTAwMzE0NTNaFw0yNDA4MjgwMzE0NTNaMBgxFjAU
BgNVBAMTDTY1MjRjMWIxLTExZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKgopX8bB42iwApqLzxBfyU/7jMHy6LpOdc0iN9+yOb73SKd4X5lHXHtRC
In5SmIf5d8q7H+whh5mZtc33oeeBsC5v+E/fWp0hk14BHOd6+nOmiqmvtOnvh4JA
v+7xdM4xraigHpnVdPoq0yGsr/IIC+99admb7weQmSfrjNNuu/z8nvCbliQO31Hh
SkAjLKElgtRfVOnL8knAmiVPpjCLZMgHyPc1Dikcwu3QFOVuTm8uTSVzyJ/52fwB
Rr6kyC8Kz98D49PK/rmUNXLJoZ1qkw2ZvugcMsrTKKIe3IgvJ7hrNyV1/HwpNtHr
rcAQZpazM3Gohbykh53Owem95aP7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUlmMf
uOZKItACKtRog6uBtpT/lV0wHwYDVR0jBBgwFoAUJdY+COq+fPpnhdTB1tNBFt4V
s9wwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4QUVBMjI4L0pkWS1D
T3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pkWS1DT3EtZlBwbmhkVEIxdE5CRnQ0VnM5dy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjhGMkQwLzdGNEE5OEVBNkUwNTExRTg5QzBENkU0QkY4
QUVBMjI4LzMwNTcyRTQ2NjcxQjExRUU5MUQwNzQ3NDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaxQ4wDQYJKoZIhvcNAQEL
BQADggEBACBdv522jE2d9NabV/k4bWUryfw6H70CkJnEhLkdAackCQ4ngUOK2E9J
wTqfBUUfEbdMtZ2i5FNCnYwGN+tQ/qprxkWqcGUPa9g4kFyVd247gzSRwB1BxpFt
oVMWG2b6sZm0O7avfLhDjID12HleKAGNBkrueGykZOWjtn6VnvEsfaKnGFffUCHR
CA2UUEbHaecAmVbY0qG9NjE9QogkZ9rvDA6CjVeeKbFre25fOrTcSAYxPRRIXCYI
EdOyb1fwfdDA+uV6KFIETxSCmrE6jY1rTtFESRpI09tdlaLIfAvTS61tq8Vwf3DS
IttDuotDsp0qDWGt2yJ/GEKkYg0VO7I=
-----END CERTIFICATE-----
Generated at Fri May 3 04:36:05 2024 by rpki-client on console-ams.rpki-client.org